• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Drupal Comment_Form_Add_Preview Function Remote Code Execution Vulnerability

Bugtraq ID:	22306
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Jan 29 2007 12:00AM
Updated:	Feb 15 2007 09:37PM
Credit:	This issue was disclosed by the vendor.
Vulnerable:	vbDrupal vbDrupal 4.7.5 Drupal Drupal 4.7.5 Drupal Drupal 4.7.4 Drupal Drupal 4.7.4 Drupal Drupal 4.7.3 Drupal Drupal 4.7.3 Drupal Drupal 4.7.2 Drupal Drupal 4.7.1 Drupal Drupal 4.7 Drupal Drupal 5.0
Not Vulnerable:	vbDrupal vbDrupal 4.7.6 Drupal Drupal 4.7.6 Drupal Drupal 5.1